Abstract

We present a new web application as a vulnerable testing
system for SQL injection attacks. Its purpose is to give
opportunity to students of Computer security courses, to
explore the nature of these modern attacks, to see how
hackers exploit them and to learn how to protect their
databases from them. Deployment of SQL injection attack on
real web applications is illegal and it is subject to prosecution by law. With this software, we protect our students, and in the same time, we offer them real hacking for ethical goal.